Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-j8x5-54p6-cqvm

Опубликовано: 12 фев. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.3

Описание

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to the Cortex XDR server.

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to the Cortex XDR server.

EPSS

Процентиль: 25%
0.00083
Низкий

5.3 Medium

CVSS4

Дефекты

CWE-424

Связанные уязвимости

nvd
6 месяцев назад

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to the Cortex XDR server.

CVSS3: 6.1
fstec
6 месяцев назад

Уязвимость компонента Broker VM платформы безопасности Cortex XDR, связанная с неправильной защитой альтернативного пути, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 25%
0.00083
Низкий

5.3 Medium

CVSS4

Дефекты

CWE-424